329 matches found
Ubuntu: Security Advisory (USN-101-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mitel 6800/6900 Series SIP Phones Backdoor Access Vulnerability
Mitel 6800/6900 Series SIP Phones excluding 6970 and Mitel 6900 Series IP MiNet Phones have a flow to spawn a telnet backdoor on the device with a static root password enabled. Affected versions include Rel 5.1 SP8 5.1.0.8016 and earlier, Rel 6.0 6.0.0.368 to 6.1 HF4 6.1.0.165, and MiNet 1.8.0.12...
Mitel 6800/6900 Series SIP Phones Backdoor Access
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2022-021 Product: Mitel 6800/6900 Series SIP Phones excluding 6970 Mitel 6900 Series IP MiNet Phones Manufacturer: Mitel Networks Corporation Affected Versions: Rel 5.1 SP8 5.1.0.8016 and earlier Rel 6.0 6.0.0.368 to 6.1 HF4...
CVE-2021-23850 Buffer Overflow vulnerability in the recovery image telnet server
A specially crafted TCP/IP packet may cause a camera recovery image telnet interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload...
Mageia: Security Advisory (MGASA-2020-0169)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RHEL 7 : telnet (RHSA-2022:0158)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:0158 advisory. Telnet is a popular protocol for logging in to remote systems over the Internet. The telnet-server packages include a telnet service that supports...
telnet-server: no bounds checks in nextitem() function allows to remotely execute arbitrary code
A vulnerability was found where incorrect bounds checks in the telnet server’s telnetd handling of short writes and urgent data, could lead to information disclosure and corruption of heap data. An unauthenticated remote attacker could exploit these bugs by sending specially crafted telnet packet...
telnet-server: no bounds checks in nextitem() function allows to remotely execute arbitrary code
A vulnerability was found where incorrect bounds checks in the telnet server’s telnetd handling of short writes and urgent data, could lead to information disclosure and corruption of heap data. An unauthenticated remote attacker could exploit these bugs by sending specially crafted telnet packet...
USN-5048-2: Inetutils vulnerability
USN-5048-1 fixed a vulnerability in Inetutils for Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. This update provides the corresponding fixes for Ubuntu 16.04 ESM. Original advisory details: It was discovered that Inetutils telnet server allows remote attackers to execute arbitrary code via short writes ...
USN-5048-2 inetutils vulnerability
USN-5048-1 fixed a vulnerability in Inetutils for Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. This update provides the corresponding fixes for Ubuntu 16.04 ESM. Original advisory details: It was discovered that Inetutils telnet server allows remote attackers to execute arbitrary code via short writes ...
USN-5048-1: Inetutils vulnerability
It was discovered that Inetutils telnet server allows remote attackers to execute arbitrary code via short writes or urgent data. An attacker could use this vulnerability to cause a DoS or possibly execute arbitrary code...
USN-5048-1 inetutils vulnerability
It was discovered that Inetutils telnet server allows remote attackers to execute arbitrary code via short writes or urgent data. An attacker could use this vulnerability to cause a DoS or possibly execute arbitrary code...
CVE-2021-38387
In Contiki 3.0, a Telnet server that silently quits before disconnection with clients leads to connected clients entering an infinite loop and waiting forever, which may cause excessive CPU consumption...
CVE-2021-38387
In Contiki 3.0, a Telnet server that silently quits before disconnection with clients leads to connected clients entering an infinite loop and waiting forever, which may cause excessive CPU consumption...
Design/Logic Flaw
In Contiki 3.0, a Telnet server that silently quits before disconnection with clients leads to connected clients entering an infinite loop and waiting forever, which may cause excessive CPU consumption...
CVE-2021-38387
In Contiki 3.0, a Telnet server that silently quits before disconnection with clients leads to connected clients entering an infinite loop and waiting forever, which may cause excessive CPU consumption...
CVE-2021-38387
In Contiki 3.0, a Telnet server that silently quits before disconnection with clients leads to connected clients entering an infinite loop and waiting forever, which may cause excessive CPU consumption...
CVE-2021-38387
CVE-2021-38387 affects Contiki 3.0, where a Telnet server that exits silently before disconnecting can cause connected clients to enter an infinite loop, leading to excessive CPU consumption. The available documents identify the vulnerable component as the Telnet server in Contiki 3.0 and describ...
Contiki 安全漏洞
Contiki is an open source cross-platform operating system for IoT Internet of Things devices. A security vulnerability in Contiki 3.0, where a silently exiting Telnet server before disconnecting from the client causes connected clients to enter an infinite loop and wait forever, which can lead to...
Metasploit Wrap-Up
New Olympic Discipline: Hive Hunting This week, community contributor Hakyac added a new Olympic discipline to Metasploit exploit sport category, which is based on the work of community security researchers @jonasLyk and Kevin Beaumont. The rules are simple: You need to abuse a flaw in Windows 10...